|
Title: DDoS attacks Post by: CasinoBit on May 26, 2013, 02:29:58 PM I am curious have there been instances of DDoS and the attacker demanding ransom in other services in the community?
We have been experiencing DDoS attacks until the mitigation server was switched, now everything seems to be better *knocks on wood*. What had really left me puzzled is how come we got attacked and asked for ransom but businesses such as Mt Gox, S Dice etc never had any problems? Title: Re: DDoS attacks Post by: OnkelPaul on May 26, 2013, 02:36:55 PM What had really left me puzzled is how come we got attacked and asked for ransom but businesses such as Mt Gox, S Dice etc never had any problems? They would probably not be talking about a ransom. Gox has been under several DDoSes, I don't think all of them were targeted to manipulate BTC exchange rate, there's a good chance that some of them were attempts to extort money from Gox. Onkel Paul Title: Re: DDoS attacks Post by: CMMPro on May 26, 2013, 03:01:38 PM Whoever was performing the recent DDOS on SR was asking for money.
I think it was only $5k worth of BTC though....still that is the definition. Title: Re: DDoS attacks Post by: Hawker on May 26, 2013, 03:26:19 PM I am curious have there been instances of DDoS and the attacker demanding ransom in other services in the community? We have been experiencing DDoS attacks until the mitigation server was switched, now everything seems to be better *knocks on wood*. What had really left me puzzled is how come we got attacked and asked for ransom but businesses such as Mt Gox, S Dice etc never had any problems? DDOS of gaming sites is normal. My sites are under constant attack that range from 5 to 15 gbps. It just never stops and the reason is simple. If you are down, someone else has revenue that would otherwise have been yours. Title: Re: DDoS attacks Post by: threeip on May 26, 2013, 08:48:25 PM What had really left me puzzled is how come we got attacked and asked for ransom but businesses such as Mt Gox, S Dice etc never had any problems? If you are down, someone else has revenue that would otherwise have been yours. Either; attacker wants cash - doesnt care about 'you' - ddos and ransom attacker wants your site down - hates 'you' - ddos and more ddos Title: Re: DDoS attacks Post by: CasinoBit on May 26, 2013, 09:00:49 PM DDOS of gaming sites is normal. My sites are under constant attack that range from 5 to 15 gbps. It just never stops and the reason is simple. If you are down, someone else has revenue that would otherwise have been yours. What is your website? Our DDoS peaked at 25gbps but what surprises me is that there apparently not have been many similar attacks on more popular bitcoin sites. I feel quite honored to be honest. Title: Re: DDoS attacks Post by: Maged on May 26, 2013, 09:26:09 PM I think a long time ago when MtGox was younger they said that someone was DDoSing them but would stop for a $10k ransom. Or maybe that was some other site. Point is, this is extremely common. In fact, it's one of the best ways for botnet operators to monetize their botnets.
Title: Re: DDoS attacks Post by: CasinoBit on May 26, 2013, 09:36:56 PM I think a long time ago when MtGox was younger they said that someone was DDoSing them but would stop for a $10k ransom. Or maybe that was some other site. Point is, this is extremely common. In fact, it's one of the best ways for botnet operators to monetize their botnets. I've heard of botnets mining LTC but never blackmailing websites... I was under the impression that that was the newest trend. Title: Re: DDoS attacks Post by: Hawker on May 26, 2013, 09:47:04 PM I think a long time ago when MtGox was younger they said that someone was DDoSing them but would stop for a $10k ransom. Or maybe that was some other site. Point is, this is extremely common. In fact, it's one of the best ways for botnet operators to monetize their botnets. I've heard of botnets mining LTC but never blackmailing websites... I was under the impression that that was the newest trend. How long have you been in gaming? Sportingbet used to get attacked that way in the 90s. Every big match was preceded by a ddos and a message "Pay us or no revenue for you." Title: Re: DDoS attacks Post by: Maged on May 26, 2013, 09:48:04 PM I think a long time ago when MtGox was younger they said that someone was DDoSing them but would stop for a $10k ransom. Or maybe that was some other site. Point is, this is extremely common. In fact, it's one of the best ways for botnet operators to monetize their botnets. I've heard of botnets mining LTC but never blackmailing websites... I was under the impression that that was the newest trend. Title: Re: DDoS attacks Post by: CasinoBit on May 26, 2013, 10:34:16 PM No, they've been doing this for many years. You just don't hear about it much since nobody wants to draw attention to these terrorists. Well they certainly deserve every cent they get for the risk they put themselves in, albeit a little difficult it would still be possible to track them down. I think a long time ago when MtGox was younger they said that someone was DDoSing them but would stop for a $10k ransom. Or maybe that was some other site. Point is, this is extremely common. In fact, it's one of the best ways for botnet operators to monetize their botnets. I've heard of botnets mining LTC but never blackmailing websites... I was under the impression that that was the newest trend. How long have you been in gaming? Sportingbet used to get attacked that way in the 90s. Every big match was preceded by a ddos and a message "Pay us or no revenue for you." Pretty long but I'm talking about BTC businesses, it amazed me that they demanded ransom in BTC and that websites such a bitzino, Strikesapphire, S. Dice etc weren't attacked (I don't even recall them being offline after all the times I've played). Anyway Maged is probably right, these dogs don't deserve a mention, no serious bitcoin site would send ransom to Iranian 13 year old teenagers with moustaches. Title: Re: DDoS attacks Post by: Hawker on May 26, 2013, 10:37:02 PM If you pay even once, you have to accept that you pay every month.
PM me if you want an intro to a firm that specialises in handling this type of ddos. Title: Re: DDoS attacks Post by: CasinoBit on May 26, 2013, 10:38:45 PM If you pay even once, you have to accept that you pay every month. PM me if you want an intro to a firm that specialises in handling this type of ddos. We've already switched to a company that seems to handle themselves but thanks. Haven't even considered paying them, just letting the community know. Title: Re: DDoS attacks Post by: Hawker on May 26, 2013, 10:44:48 PM If you pay even once, you have to accept that you pay every month. PM me if you want an intro to a firm that specialises in handling this type of ddos. We've already switched to a company that seems to handle themselves but thanks. Haven't even considered paying them, just letting the community know. I'm sorry to imply you did. Good luck. It costs them more to knock you down for an hour than you take in an hour so eventually they will be overpowered by your bandwidth and servers. But getting to that point is a pain. Title: Re: DDoS attacks Post by: Maged on May 26, 2013, 11:20:20 PM If you pay even once, you have to accept that you pay every month. Don't you wish! You will have to pay them every time they run out of money for blow.Title: Re: DDoS attacks Post by: mcdett on May 27, 2013, 01:52:19 AM You can never pay them, it was mentioned here before, but as a good philosophy in general is to never pay blackmail or extortion... they'll always come back for more. You need to upgrade your stuff. Get an Akamai front end, a WAF tuned into typical ddos methods, and maybe some simple routines in your code to better verify normal users and not bad accounts.... but this all takes money.
Be glad the day you've been ddos'ed, it means you've arrived. You just need to get your shit together now. Be better, faster and stronger. Good luck! Title: Re: DDoS attacks Post by: WinVery.com on May 27, 2013, 02:04:31 AM Posts like this will encourage them.
Title: Re: DDoS attacks Post by: yocko06 on May 27, 2013, 02:55:26 AM ddos attacker was most likely opencoin/ripple. most likely government driven in order to disrupt bitcoin and turn people to an alternative that is controlled rather than free.
Title: Re: DDoS attacks Post by: CasinoBit on May 27, 2013, 03:09:57 AM Posts like this will encourage them. How so? Posts like this will show that we will not be bullied and that we are open to talk about it. Title: Re: DDoS attacks Post by: Tywill on May 27, 2013, 04:16:04 AM You can never pay them, it was mentioned here before, but as a good philosophy in general is to never pay blackmail or extortion... they'll always come back for more. You need to upgrade your stuff. Get an Akamai front end, a WAF tuned into typical ddos methods, and maybe some simple routines in your code to better verify normal users and not bad accounts.... but this all takes money. Be glad the day you've been ddos'ed, it means you've arrived. You just need to get your shit together now. Be better, faster and stronger. Good luck! worth reposting Title: Re: DDoS attacks Post by: CasinoBit on May 27, 2013, 04:31:05 AM You can never pay them, it was mentioned here before, but as a good philosophy in general is to never pay blackmail or extortion... they'll always come back for more. You need to upgrade your stuff. Get an Akamai front end, a WAF tuned into typical ddos methods, and maybe some simple routines in your code to better verify normal users and not bad accounts.... but this all takes money. Be glad the day you've been ddos'ed, it means you've arrived. You just need to get your shit together now. Be better, faster and stronger. Good luck! worth reposting I think what people don't seem to understand is that if you give these individuals money then you support DDoS attacks on fellow businesses, I would rather have the website unresponsive than pay, it's quite comforting to know these individuals wouldn't make a cent for their efforts. Wish everyone was like that, then we wouldn't have this problem. |